There is a built-in segregation of duties violation in every database — and it’s one you can’t get rid of. Database activity monitoring is so critical to organizations seeking to satisfy regulatory requirements. Organizations can balance monitoring activity by prioritizing it based on risk factors, experts say. Organizations need to maintain layered “defense in depth” strategies to avoid runs around current database defenses, experts warn. For example, many organizations leave themselves at risk when they fail to encrypt database backup tapes, expert says.”]
Source: https://www.darkreading.com/analytics/six-steps-toward-better-database-security-compliance